Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/vBnIo-7gyBHTcyT_cy1Nzc3tIUY.roa
File: vBnIo-7gyBHTcyT_cy1Nzc3tIUY.roa (raw, json)
Hash identifier: fHIX1LrRBxI5KVhq6kJXbkC14iwPTyUkL4eRrTZbeIM=
Subject key identifier: BC:19:C8:A3:EE:E0:C8:11:D3:73:24:FF:73:2D:4D:CD:CD:ED:21:46
Certificate issuer: /CN=37518d180923a7f3c00653ec12bc702b95aab907
Certificate serial: 01856D0AA190EC7A6ED3EE68613F2A32DB25
Authority key identifier: 37:51:8D:18:09:23:A7:F3:C0:06:53:EC:12:BC:70:2B:95:AA:B9:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N1GNGAkjp_PABlPsErxwK5WquQc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/vBnIo-7gyBHTcyT_cy1Nzc3tIUY.roa
Signing time: Sun 01 Jan 2023 11:14:51 +0000
ROA not before: Sun 01 Jan 2023 11:14:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15843
IP address blocks: 194.27.192.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:0a:a1:90:ec:7a:6e:d3:ee:68:61:3f:2a:32:db:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37518d180923a7f3c00653ec12bc702b95aab907
Validity
Not Before: Jan 1 11:14:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bc19c8a3eee0c811d37324ff732d4dcdcded2146
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:cc:29:ad:73:2d:97:ce:e1:2d:ba:19:ff:fe:
c6:c4:49:07:10:ec:4e:8c:c5:02:d0:13:dc:ce:c3:
de:7d:4b:ce:cd:ed:09:49:7c:bd:1e:68:bd:32:c1:
81:63:52:cd:c7:ec:10:12:a8:e4:70:6f:0c:a6:85:
ea:d9:8f:79:2c:73:6c:75:d1:a0:90:97:ff:78:f6:
51:0b:f9:40:1d:5b:e0:e8:fb:00:d8:f1:ae:fe:6e:
7e:5e:ae:64:90:4b:a7:c6:9d:ff:c4:6f:e6:5c:b2:
7c:b3:57:ff:16:dd:cb:ad:a5:f8:bb:fa:2a:11:62:
3d:9a:3e:a6:35:d0:51:7a:9f:70:fb:90:59:b1:b2:
f8:14:55:e8:3f:d0:c9:1a:d8:cb:50:7b:d3:5c:39:
06:c6:88:41:71:28:0f:a5:26:e7:11:22:28:3e:23:
59:5a:43:5a:70:9d:bd:6b:ec:0e:04:ad:56:8b:3c:
b5:3b:05:7b:a8:52:b9:d0:c6:a5:c4:83:3f:36:c7:
80:bd:7e:af:93:79:d3:d9:da:67:28:0f:64:04:a0:
7e:98:21:4d:15:e1:57:c5:be:3b:60:46:0d:26:df:
07:df:8e:12:28:d5:ca:1d:f2:f1:f5:44:d7:74:2c:
60:45:e0:08:cb:35:5b:29:35:17:9c:ed:46:05:9c:
de:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:19:C8:A3:EE:E0:C8:11:D3:73:24:FF:73:2D:4D:CD:CD:ED:21:46
X509v3 Authority Key Identifier:
keyid:37:51:8D:18:09:23:A7:F3:C0:06:53:EC:12:BC:70:2B:95:AA:B9:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N1GNGAkjp_PABlPsErxwK5WquQc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/vBnIo-7gyBHTcyT_cy1Nzc3tIUY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/N1GNGAkjp_PABlPsErxwK5WquQc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.27.192.0/22
Signature Algorithm: sha256WithRSAEncryption
a1:71:d4:4f:a2:78:aa:7d:dd:17:1e:31:ef:34:f3:89:ca:95:
1a:df:19:88:80:2c:be:82:47:d8:86:0c:ad:be:9d:7c:c5:b1:
7d:0a:f1:6f:87:ac:28:c6:54:81:d5:09:dc:7a:d8:58:f2:38:
bd:0b:16:9f:a8:77:e0:80:66:83:c1:83:0a:d8:2d:0a:1a:42:
14:78:80:c9:5e:bf:62:6f:ef:0b:c6:fa:33:78:44:0f:6d:d1:
a8:2b:14:4f:45:b1:0f:1d:2c:89:89:cb:cf:d8:ff:10:a8:65:
1f:9d:68:33:26:87:80:72:dc:f3:0f:d0:23:58:51:2e:1e:86:
c1:fc:eb:4a:bc:72:04:d3:c2:cb:ff:eb:d3:45:bc:2e:ee:96:
4c:1f:8e:8a:86:7e:0e:c8:f4:84:57:76:f8:62:88:b1:ac:ab:
fb:a6:b9:3e:9f:e8:cb:28:27:95:7f:f4:ad:4c:5a:be:08:ba:
01:ac:80:c0:45:1f:9d:74:29:f5:64:74:5a:bd:85:f8:96:75:
b1:bb:5f:e6:e7:d9:07:df:3b:eb:05:f4:df:aa:0f:bd:86:1a:
22:6e:96:56:9c:94:35:18:97:8f:1e:90:c6:de:c8:e7:a5:3c:
73:8d:41:b9:95:20:d0:b9:2b:de:e7:2e:de:a4:2c:f5:64:3c:
c1:92:68:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:39 2024 by rpki-client on console-fra.rpki-client.org